codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00

Author	SHA1	Message	Date
github-actions[bot]	fa850cccb1	Release preparation for version 2.20.6	2025-03-03 17:13:19 +00:00
github-actions[bot]	ad24f94a77	Post-release preparation for codeql-cli-2.20.5	2025-02-17 17:58:24 +00:00
github-actions[bot]	6f4562f3bd	Release preparation for version 2.20.5	2025-02-17 16:55:54 +00:00
Asger F	eedfa4dbb2	Merge pull request #18341 from asgerf/py/diff-informed Python: enable diff-informed data flow queries	2025-02-11 13:15:44 +01:00
yoff	37ddaa36ad	Merge pull request #18702 from github/tausbn/python-allow-comments-in-subscripts Python: Allow comments in subscripts	2025-02-06 23:31:29 +01:00
Taus	131ec8d22f	Python: Handle loop constructs outside of loops Observed on some test files in Nuitka/Nuitka, having `break` and `continue` outside of loops in Python is (to Python) a syntax error, but our parser happily accepted this broken syntax. This then caused issues further downstream in the control-flow construction, as it broke some invariants. To fix this we now skip the code that would previously fail when the invariants are broken. Co-authored-by: yoff <yoff@github.com>	2025-02-06 14:30:16 +00:00
Taus	3d25cd3bb5	Python: Add change note	2025-02-06 14:08:20 +00:00
Asger F	d3b9d1d89d	JS: Partial SSRF does not select the sink location	2025-02-06 11:30:32 +01:00
Asger F	7d6abb4e0a	JS: Disable diff-informedness for full SSRF Partial SSRF uses its result in a way that prevents diff-informedness	2025-02-06 11:30:18 +01:00
Asger F	d3ee658399	Python: resolve remaining TODOs	2025-02-06 10:27:56 +01:00
Asger F	975ce064fc	Python: implement for polynomial redos	2025-02-06 10:27:45 +01:00
Asger F	e4a1847dad	Python: mass enable diff-informed data flow	2025-02-06 10:27:19 +01:00
github-actions[bot]	f1b05a79a4	Post-release preparation for codeql-cli-2.20.4	2025-02-04 09:25:09 +00:00
github-actions[bot]	573e53e454	Release preparation for version 2.20.4	2025-02-03 15:19:35 +00:00
erik-krogh	a1afa20d4b	add change-notes	2025-01-27 22:43:13 +01:00
erik-krogh	90b403b40b	py: delete the remainder of the deprecated TypeTracker libary	2025-01-27 22:17:18 +01:00
erik-krogh	34f5f61a10	all: use my script to delete outdated deprecations	2025-01-27 22:16:48 +01:00
github-actions[bot]	fbb7f0a0c6	Post-release preparation for codeql-cli-2.20.2	2025-01-20 21:11:14 +00:00
github-actions[bot]	a0512a50f2	Release preparation for version 2.20.2	2025-01-20 21:11:12 +00:00
Joe Farebrother	d248fbfe57	Merge pull request #18301 from joefarebrother/python-model-missing-builtins Python: Add models for builtins `map`, `filter`, `zip`, and `enumerate`.	2025-01-20 16:39:37 +00:00
Geoffrey White	90faab456d	Merge pull request #18473 from geoffw0/sensitive2 Improve shared sensitive data library handling of snake_case variable names	2025-01-15 18:02:33 +00:00
Joe Farebrother	344dd2dab5	Qldoc fix	2025-01-15 10:26:37 +00:00
Joe Farebrother	2aea356756	Add change note + fix tests	2025-01-15 10:24:18 +00:00
Joe Farebrother	460de3f7d5	Reduce generality of map and zip for performance	2025-01-14 09:39:57 +00:00
Joe Farebrother	4e36008ed9	Add tests	2025-01-14 09:39:56 +00:00
Joe Farebrother	642f9dcbea	Model missing builtins	2025-01-14 09:39:54 +00:00
yoff	599411b440	Merge pull request #17787 from yoff/shared/add-location-to-typetracking-nodes shared: Add locations to type tracking nodes	2025-01-13 23:06:09 +01:00
Joe Farebrother	a7fb73a2b2	Merge pull request #18185 from joefarebrother/python-lxml Python: Model additional flow steps for the lxml framework	2025-01-10 13:40:16 +00:00
Geoffrey White	5ef5b04aac	Add change notes.	2025-01-10 11:16:53 +00:00
Tom Hvitved	303b11ec36	Merge pull request #18298 from hvitved/rust/mad-source-sink Rust: Add support for MaD sources and sinks with access paths	2025-01-10 11:49:51 +01:00
Geoffrey White	f8659c0a4e	Sync identical files.	2025-01-10 10:26:13 +00:00
yoff	aca5a51a78	Merge branch 'main' into shared/add-location-to-typetracking-nodes	2025-01-08 12:47:05 +01:00
github-actions[bot]	fb20f6ca63	Post-release preparation for codeql-cli-2.20.1	2025-01-07 22:07:40 +00:00
Dave Bartolomeo	4c53caf021	Update python/ql/lib/change-notes/released/3.1.0.md	2025-01-07 15:58:28 -05:00
Dave Bartolomeo	45c00d6880	Update python/ql/lib/CHANGELOG.md	2025-01-07 15:58:19 -05:00
github-actions[bot]	88b6f1e79a	Release preparation for version 2.20.1	2025-01-07 20:50:36 +00:00
Dave Bartolomeo	72a53c4b23	Revert "Release preparation for version 2.20.1"	2025-01-07 13:32:23 -05:00
Dave Bartolomeo	cb31394729	Update python/ql/lib/CHANGELOG.md	2025-01-07 12:23:52 -05:00
Dave Bartolomeo	2e46d26eca	Update python/ql/lib/change-notes/released/3.1.0.md	2025-01-07 12:22:31 -05:00
github-actions[bot]	fbf9f2fff8	Release preparation for version 2.20.1	2025-01-07 17:20:13 +00:00
Dave Bartolomeo	22e030584c	Revert "Release preparation for version 2.20.1"	2025-01-07 12:14:27 -05:00
Joe Farebrother	8b174ea07c	Apply suggestions from code review - update doc comments Co-authored-by: yoff <lerchedahl@gmail.com>	2025-01-07 15:21:19 +00:00
Dave Bartolomeo	8a2398aaf0	Update python/ql/lib/CHANGELOG.md	2025-01-06 13:26:09 -05:00
github-actions[bot]	a121c5a5d0	Release preparation for version 2.20.1	2025-01-06 18:20:22 +00:00
Tom Hvitved	1b31c90d26	Implement `FlowSummaryImpl` stubs	2025-01-06 13:26:51 +01:00
Rasmus Wriedt Larsen	a9704d8de0	Update change-note wording Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>	2024-12-19 14:08:23 +01:00
Rasmus Wriedt Larsen	2b3fc9b36c	Python: Add change-note	2024-12-18 16:02:02 +01:00
Rasmus Wriedt Larsen	34631a8784	Python: Model FastAPI requests Co-authored-by: Joe Farebrother <joefarebrother@github.com>	2024-12-18 15:58:51 +01:00
Michael Nebel	aaf0cd5dee	Merge pull request #17968 from michaelnebel/java/movetestutils Move test utilities to the query pack.	2024-12-16 13:41:30 +01:00
Geoffrey White	03f962ed86	Merge pull request #18226 from geoffw0/badcrypto Rust: Weak encryption algorithm query.	2024-12-12 14:21:16 +00:00

1 2 3 4 5 ...

2869 Commits